Release Info

Advisory: CLSA-2025:1751612441

OS: CentOS 6 ELS

Public date: 2025-07-04 07:00:43

Project: rsync

Version: 3.0.6-12.el6.tuxcare.els6

ETA for 100% rollout: 2025-07-18

Errata link: https://errata.tuxcare.com/els_os/centos6els/CLSA-2025-1751612441.html

Changelog

- CVE-2024-12087: fix path traversal vulnerability by adding a proper symlink verification and deduplication checks on a per-file-list basis

Update

Update command: yum update rsync* Immediate update (via bypass): yum update rsync* --enablerepo=ELS6-rollout-2-bypass

Packages list

rsync-3.0.6-12.el6.tuxcare.els6.x86_64.rpm

CVEs

CVE-2024-12087